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What is claimed is: 

1 . A method for caching secure network communications in a computer 
network, comprising blacing at least one secure reverse proxy among at least one 
web server and at least one web browser, wherein the at least one secure reverse 
proxy caches secure CDntent. 

2. A meth Dd for secure network communications, comprising: 
coupling at leasf one network appliance among at least one web server and at 

least one web browser; ! 

establishing a sefcure session between the at least one network appliance and 
the at least one web browser, wherein the at least one web browser sends an 
encrypted request for content using a secure session protocol; 

decrypting the encrypted request for content at the at least one network 
appliance; 

examining at least cine network appliance's local cache to locate the content; 

encrypting the contdnt from the at the at least one network appliance's local 
cache using an established secure protocol; and 

sending the content to the at least one web browser, wherein reducing the 
number of requests at the wep server for establishing a secure network connection 
improves network efficiency.! 
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3. The m ;thod of claim 2, wherein the local cache includes non-volatile 
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memory. 



4. 



The mlethod of claim 2, wherein the at least one network appliance 
and the at least one Web server are collocated. 



5. 



The n 



present in the at least 



ethod of claim 2, wherein the content includes an HTTP page. 



receiving back 
appliance a response 



6. The method of claim 2, wherein decrypting further includes: 
determining the content requested by the at least one web browser is not 

one network appliance^ local cache; 
forwarding the request for content to the at least one web server using a 
separate secure session; 

from the at least one web server to the at least one network 
containing the requested content, wherein communication 
between the at least pne network appliance and the at least one web server is secure; 
and 

caching the requested content locally at the network appliance for future 
requests. 

7. The method of claim 2 5 wherein the secure session uses Transport 
Layer Security protocol. 



V 
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8. The method of claim 2, wherein the secure session uses Secure 
Socket Layer protocol. I 



The method of claim 2, wherein the secure session uses Internet 
Protocol Secure ("IPSec ') techniques. 

10. A metho i for caching secure network communications, comprising: 



coupling at leasi 



server and at least on web browser wherein the at least one SRP intercepts requests 



from the at least one wp 
session with the at leas 



between the at least one 
one web browser sends 



one Secure Reverse Proxy ("SRP") among at least one web 



d browser to establish a secure network communication 
one web server; 



establishing a first secure session using a first secure session protocol 



cache determining if tho 
retrieving the H 



SRP and the at least one web browser, wherein the at least 
an encrypted request for a HTTP page; 
decrypting the elncrypted request for a HTTP page at the at least one SRP 
using the first secure session protocol, wherein the at least one SRP examines a local 

HTTP page is available; 
TP page if available from the local cache; 
encrypting the H^TP page retrieved from the local cache using the first 
secure session protocol; 

sending the encrypted HTTP page to the at least one web browser if the 
HTTP page is available frdm the local cache using the first secure session; 

establishing a second secure session using a second secure session protocol 
with the at least on web server if the HTTP page is not available from the local 
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cache, wherein the second secure session is maintained; 

encrypting the i equest for a HTTP page using the second secure session 
protocol; 

forwarding the Request for a HTTP page encrypted using the second secure 
session to the at least one web server: 

receiving from t ie at least one web server an encrypted HTTP page using the 
second secure session; 

decrypting the encrypted HTTP page using the second secure session 
protocol; 

storing the HTTS page in the at least one SRP's local cache; 
encrypting the HTTP page using the first secure session protocol; and 
sending the HTTlj* page to the at least one web browser using the first secure 
session. 

1 1 . The methold of claim 1 0, wherein coupling includes connecting the 
SRP and web server using a dedicated line. 

12. The method} of claim 10, wherein coupling includes having the web 
server and SRP collocated. 



13. The method of claim 10, wherein storing includes using non-volatile 
media to store the content. 

14. The method of claim 10, wherein storing includes encrypting the 
content using a third secure session protocol. 
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15. The method of claim 10, wherein the first secure session protocol 
includes Transport La>pr Security protocol. 

16. The method of claim 10, wherein the second secure session protocol 
includes Transport Layer Security protocol. 

17. The method of claim 10, wherein the third secure session protocol 
includes Transport Layer Security protocol 

18. The method of claim 10, wherein the first secure session protocol 
includes Secure Socket Laver protocol. 

19. The method ©f claim 10, wherein the second secure session protocol 
includes Secure Socket Layer protocol. 

20. The method of claim 10, wherein the third secure session protocol 
includes Secure Socket Layer! protocol 

21 . The method of claim 10, wherein the first secure session protocol 
includes Internet Protocol Seciire ("IPSec") techniques. 

22. The method of claim 10, wherein the second secure session protocol 
includes Internet Protocol Secure\("IPSec") techniques. 
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23. The 
includes Internet Protocol 



method of claim 10, wherein the third secure session protocol 
Secure ("IPSec") techniques. 



24. A methoc 



for caching secure content in a Secure Reverse Proxy 



("SRP") in an secure network, comprising 



coupling at least 
web server wherein the al 
requests for establishing 



c ne SRP among at least one web browser and at least one 
least one SRP receives from the at least one web browser 
first secure session; 



establishing the first secure session using a first secure session protocol 



between the at least one 
browser sends an encrypte 



SRP and the at least on web browser, wherein the web 
request for content to the at least one SRP; 



decrypting the encrypted request for content from the at least one web 



browser at the at least one 



SRP using the first secure session protocol, wherein the at 



least one SRP determines tjiat the at least one SRP does not possess the requested 
content; 

establishing a second secure session using a second secure session protocol 
between the at least one SRP and the at least one web server, wherein the second 
secure session is maintained; 

encrypting the request for content from the at least one web browser using 
the second secure session protocol; 

sending the encryptea[ request for content to the at least one web server using 
the second secure session; 

receiving the content fitam the at least on web server at the least one SRP 
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using the second secure session; 

decrypting the content using the second secure session protocol; 

storing the requested content locally in a memory at the at least one SRP; and 

retrieving the content from the memory at the at least one SRP upon 

subsequent requests far the content. 

25. The method of claim 24, wherein storing includes encrypting the 
content using a third seture session protocol, wherein the third secure session 
protocol is known only to the at least one SRP. 

26. The methbd of claim 24, wherein storing includes using non- volatile 
media. I 

27. The methdd of claim 24, wherein coupling includes establishing a 
dedicated secure line between the SRP and the web server. 

28. The method of claim 24, wherein coupling includes collocating the 
web server and the SRP. 1 

29. The methodlof claim 24, wherein content includes an HTTP page. 

30. The method A>f claim 24, wherein the first secure session includes 
Transport Layer Security protocol. 
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3 1 . The niethod of claim 24, wherein the second secure session includes 
Transport Layer Security protocol. 

32. The method of claim 24, wherein the first secure session includes 
Secure Socket Layer protocol. 

33. The methdd of claim 24, wherein the second secure session includes 
Secure Socket Layer protocol. 



34. The method of claim 24, wherein the first secure session includes 



Internet Protocol Secure ("' 



35. The method 



'Sec") techniques. 



of claim 24, wherein the second secure session includes 



Internet Protocol Secure ("IPSec") techniques. 



36. The method o|f claim 24, wherein storing includes encrypting the 
requested HTTP page. 

37. A system for caching secure communications in a network 
comprising: 

at least one web server;l 
at least one web browseh 

at least one Secure Revelse Proxy ("SRP") coupled among the at least one 
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6 web server and the at least one web browser, wherein the at least one SRP caches 

7 secure content. / 

1 38. The system of claim 37, wherein the at least one web browser, the at 

2 least one web server, and at leafet one SRP use Transport Layer Security protocol to 

3 establish a secure session. / 

1 39. The systerrf of claim 37, wherein the at least one web browser, the at 

led / 

^3 2 least one web server, and at least one SRP use Secure Socket Layer protocol to 

. ft / 

j=3 3 establish a secure session. 

w / 

m / 

fi / 

l 40. The sfystem of claim 37, wherein the at least one web browser, the at 

Sj 2 least one web server, and at least one SRP use Internet Protocol Secure ("IPSec") 

■jQ 3 techniques to establish a secure session. 

J 

1 \ 41 . A method for secure communications in a network, comprising: 

2 caching responses including secure content from at least one web server to at 

3 least one wfb browser in at least one Secure Reverse Proxy ("SRP"), wherein the at 

4 least one SRP is coupled among the at least one web server and the at least one web 

5 browser; and 

6 enabling future requests for the same secure content to be processed by the at 

7 least one SRP. 



C:\NrPortbl\PALIBl\PBM\1327324_5.DOC 



1 \ 42. A system for enhancing secure communications in a computer 

2 network, comprising: \ 

3 at least one Secute Reverse Proxy ("SRP") coupled among at least one web 

4 server and at least one browser, wherein the at least one SRP establishes a secure 

5 session between the at ledst one SRP and the at least one web browser; 

6 the at least one wei browser sending to the at least one SRP an HTTP page 

7 request encrypted using thd secure session protocol; 

8 the at least one SRPldecrypting the HTTP page request, wherein the SRP 

J 9 examines a local cache to lofcate the HTTP page, retrieves the HTTP page, encrypts 

u 10 the HTTP page from the local cache using the established secure session protocol, 

W 1 

U1 1 1 and sends the HTTP page to the at least one web browser using the secure session 

a 12 reducing the messages sent tolthe web server improving the efficiency of the 

r ti I 1 

13 network. 

is i 

Q I 

1 43 . The system of claim 42, wherein the secure session is established 

2 using Transport Layer Security protocol. 

1 44. The system of claim 42, wherein the secure session is established 

2 using Secure Socket Layer protoaol. 

1 . 45. The system of claim 42, wherein the secure session is established 

2 using Internet Protocol Secure ("IPSec") techniques. 
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46. The system of claim 42, further comprising: 

the at least one SRP establishing a separate secure session with the at least 
one web server, wherein the at least on web server forwards the HTTP page request 
to the at least one web sarver using a separate secure session; 

the at least one wfeb server sending to the at least one SRP a response 
containing the requested HTTP page, wherein communication between the at least 
one SRP and the at least one web server is secure using the separate secure session; 
and 1 

the at least one SRI? caching the requested HTTP page for future requests. 

47. A computer-jreadable medium, comprising executable instructions for 
caching secure content in computer network which, when executed in a processing 
system, causes the system t©: 

couple at least one Secure Reverse Proxy ("SRP' 1 ) among at least one web 
server and at least one browser; 

direct requests for establishing a secure connection from the at least one web 
browser to the at least one SRP, wherein the SRP responds by initiating an initial 
secure handshake; 

establish a secure session between the at least one SRP and the at least one 
web browser, wherein the at least one web browser sends an HTTP page request 
encrypted using a secure session protocol; 

decrypt the HTTP pagd request at the at least one SRP, wherein the SRP 
examines a local cache to locate the HTTP page; 

retrieve the HTTP page from the local cache; 
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encrypt the HTTP page from the local cache at the at least one SRP using the 
established secure protocol; and 



1 

2 
3 
4 
5 
6 
7 
8 



the at least one web browser, wherein contact with 
reduced improving the effective efficiency of the 



send the HTTP page 
the at least one web server is 
network. 

48. The computer readable medium of claim 47, further comprising 
instructions that when executed in a processing system cause the system to: 
forward the HTTP pa ^e request to the at least one web server using a 

the HTTP page is not present in the local cache; 
st one web server to the at least one SRP a response 
P page wherein communication between the at least 
web server is secure using a separate secure session; 



separate secure session when 
receive from the at le; 
containing the requested HT; 
one SRP and the at least one 



and 

cache the requested HtTTP page locally at the SRP for future requests. 

49. An electromagnetic medium containing executable instructions for 
improving secure connections in computer network communications which, when 
executed in a processing system, causes the system to: 

couple at least one Secure Reverse Proxy ("SRP") among at least one web 
server and at least one browsei ; 

direct requests for estat lishing a secure connection from the at least one web 
browser to the at least one SRI , wherein the SRP responds by initiating an initial 
secure handshake; 
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to: 



establish a secure session between the at least one SRP and the at least one 
web browser, wherein the at least one web browser sends an HTTP page request 
encrypted using a secure session protocol; 

decrypt the HTTP paj;e request at the at least one SRP, wherein the SRP 
examines a local cache to locate the HTTP page; 

retrieve the HTTP pa ;e from the local cache; 

encrypt the HTTP page from the local cache at the at least one SRP using the 
established secure protocol; and 

send the HTTP page 1 o the at least one web browser, wherein contact with 
the at least one web server is reduced improving the effective efficiency of the 
network. 

50. The electromagnetic medium of claim 49, further comprising 
instruction that when executed in a processing system cause the processing system 



forward the HTTP page request to the at least one web server using a 



separate secure session when 



the HTTP page is not present in the local cache; 



receive from the at least one web server to the at least one SRP a response 
containing the requested HTTP page wherein communication between the at least 
one SRP and the at least one web server is secure using a separate secure session; 



and 



cache the requested HT 



P page locally at the SRP for future requests. 



U 
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